diff options
author | mark <mark> | 2009-12-14 01:41:29 +0000 |
---|---|---|
committer | mark <mark> | 2009-12-14 01:41:29 +0000 |
commit | d84fbd3987192e9bece5fc074dd7507dd1e2c7b7 (patch) | |
tree | 9b85902000fd523d9824219036d716109ffe62fc /httemplate/edit | |
parent | 3fa2bc364fc6810b7ce8a02d27e7062ff850ee9d (diff) |
Add access right to view attachments
Diffstat (limited to 'httemplate/edit')
-rwxr-xr-x | httemplate/edit/cust_main_attach.cgi | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/httemplate/edit/cust_main_attach.cgi b/httemplate/edit/cust_main_attach.cgi index 5e9b16c99..a00731050 100755 --- a/httemplate/edit/cust_main_attach.cgi +++ b/httemplate/edit/cust_main_attach.cgi @@ -44,6 +44,7 @@ onclick="return(confirm('Delete this file?'));"> <%init> my $curuser = $FS::CurrentUser::CurrentUser; +die "access denied" if !$curuser->access_right('View attachments'); my $attachnum = ''; my $attach; if ( $cgi->param('error') ) { |